Goodbye CVE? European Vulnerability Database EUVD Now Live
a year ago
- #Vulnerability Database
- #European Union
- #Cybersecurity
- ENISA launched the beta of the European Vulnerability Database (EUVD), a public platform for vulnerability handling in the EU.
- EUVD operates alongside but independently from the CVE system, aiming to improve coordination and transparency.
- Concerns over the CVE program's stability due to US government funding led to the creation of EUVD as a potential backup.
- EUVD offers additional functionalities, including highlighting exploited vulnerabilities and an enhanced search function.
- The database supports the Common Security Advisory Framework (CSAF) for machine-readable vulnerability advisories.
- EUVD uses its own identification system, allowing for independent validation of reports without replacing CVE entries.
- The platform focuses on underreported vulnerabilities relevant to the European digital landscape.
- Community feedback is mixed, with some praising the initiative and others questioning the need for another ID system.
- EUVD is part of broader efforts to improve digital sovereignty and cybersecurity capabilities in the EU.
- The database is in beta, with ENISA encouraging contributions from national authorities, private companies, and academic institutions.